Embodiments of the invention are directed to techniques for preventing access to protected resources by unauthorized individuals by enabling an administrator associated with a transport computer to customize filtering rules via a user interface. In some embodiments, a server computer can, from a client computer, receive credentials of the administrator. The credentials can be used to retrieve requesting computers registered with the transport computer. The requesting computers may then be displayed at the client computer. A selection of one of the requesting computers is received from the client computer. A plurality of settings, which represent rules controlling which authorization request messages from the selected requesting computer are forwarded, are displayed at the client computer, wherein one of the settings references one or more attributes that distinguish certain authorization request messages. In response to receiving a selection of the respective setting, modifying the rules in accordance with the plurality of settings.
Legal claims defining the scope of protection, as filed with the USPTO.
1. A method comprising, performing by a server computer: accessing a database to retrieve a plurality of requesting computers that have been registered with a transport computer, wherein, for each of the plurality of requesting computers, the transport computer is networked to a requesting computer and configured to process authorization request messages for the requesting computer; causing a list of the plurality of requesting computers to be displayed at a client computer; receiving, from the client computer, a selection from the list of the plurality of requesting computers, thereby providing a selected requesting computer; causing a first setting, which represents a rule that controls which authorization request messages from the selected requesting computer are forwarded to the transport computer, to be displayed at the client computer, wherein the first setting references one or more first attributes that distinguish a subset of authorization request messages from other authorization request messages; responsive to receiving a first selection of the first setting from the client computer, accessing the database to modify the rule in accordance with the first setting; receiving a first authorization request message that is characterized by one or more second attributes from the selected requesting computer; responsive to receiving the first authorization request message: using the first authorization request message to access a set of rules that control which authorization request messages from the selected requesting computer are forwarded to the transport computer; and processing the first authorization request message in accordance with the set of rules, which comprises processing the first authorization request message in accordance with a first protocol in response to determining that the first authorization request message is characterized by the one or more second attributes, wherein processing the first authorization request message in accordance with the first protocol comprises transmitting an authorization response message to the selected requesting computer without forwarding the first authorization request message to the transport computer.
2. The method of claim 1 , wherein the rule that controls which authorization request messages from the selected requesting computer are forwarded to the transport computer is received from the transport computer.
3. The method of claim 1 , wherein the rule that controls which authorization request messages from the selected requesting computer are forwarded to the transport computer is received from a transaction processing entity.
4. The method of claim 1 , wherein the rule that controls which authorization request messages from the selected requesting computer are forwarded to the transport computer declines requests to access a resource, where the requests are associated with a particular user identifier.
5. The method of claim 1 , wherein the authorization response message indicates that a request to access a resource for which the first authorization request message was transmitted is declined.
6. The method of claim 1 , wherein the first setting is associated with a plurality of settings, and the plurality of settings further comprises a second setting that references user identifiers that are assigned by a resource computer that is associated with the transport computer; and wherein the method further comprises: responsive to receiving a second selection of the second setting from the client computer, accessing the database to modify the set of rules in accordance with the plurality of settings; receiving, from the selected requesting computer, a second authorization request message that is transmitted on behalf of a request to access a resource that is associated with a user identifier that is assigned by the resource computer; and responsive to receiving the second authorization request message, processing the second authorization request message in accordance with the set of rules, which comprises processing the second authorization request message in accordance with a second protocol in response to determining that the request is associated with the user identifier that is assigned by the resource computer.
7. The method of claim 1 , wherein information from the database associated with the plurality of requesting computers includes an identifier of a venue associated with the requesting computer and a name of the venue associated with the requesting computer.
8. A server computer comprising: a processor; and a computer-readable medium coupled to the processor, the computer-readable medium including code executable by the processor for performing a method comprising: accessing a database to retrieve a plurality of requesting computers that have been registered with a transport computer, wherein, for each of the plurality of requesting computers, the transport computer is networked to a requesting computer and configured to process authorization request messages for the requesting computer; causing a list of the plurality of requesting computers to be displayed at a client computer; receiving, from the client computer, a selection from the list of the plurality of requesting computers, thereby providing a selected requesting computer; causing a first setting, which represents a rule that controls which authorization request messages from the selected requesting computer are forwarded to the transport computer, to be displayed at the client computer, wherein the first setting references one or more first attributes that distinguish a subset of authorization request messages from other authorization request messages; responsive to receiving a first selection of the first setting from the client computer, accessing the database to modify the rule in accordance with the first setting; receiving a first authorization request message that is characterized by one or more second attributes from the selected requesting computer; responsive to receiving the first authorization request message: using the first authorization request message to access a set of rules that control which authorization request messages from the selected requesting computer are forwarded to the transport computer; and processing the first authorization request message in accordance with the set of rules, which comprises processing the first authorization request message in accordance with a first protocol in response to determining that the first authorization request message is characterized by the one or more second attributes, wherein processing the first authorization request message in accordance with the first protocol comprises transmitting an authorization response message to the selected requesting computer without forwarding the first authorization request message to the transport computer.
9. The server computer of claim 8 , wherein the rule that controls which authorization request messages from the selected requesting computer are forwarded to the transport computer is received from the transport computer.
10. The server computer of claim 8 , wherein the rule that controls which authorization request messages from the selected requesting computer are forwarded to the transport computer is received from a transaction processing entity.
11. The server computer of claim 8 , wherein the rule that controls which authorization request messages from the selected requesting computer are forwarded to the transport computer declines requests to access a resource, where the requests are associated with a particular user identifier.
12. The server computer of claim 8 , wherein the authorization response message indicates that a request to access a resource for which the first authorization request message was transmitted is declined.
13. The server computer of claim 8 , wherein the first setting is associated with a plurality of settings, and the plurality of settings further comprises a second setting that references user identifiers that are assigned by a resource computer that is associated with the transport computer; and wherein the method further comprises: responsive to receiving a second selection of the second setting from the client computer, accessing the database to modify the set of rules in accordance with the plurality of settings; receiving, from the selected requesting computer, a second authorization request message that is transmitted on behalf of a request to access a resource that is associated with a user identifier that is assigned by the resource computer; and responsive to receiving the second authorization request message, processing the second authorization request message in accordance with the set of rules, which comprises processing the second authorization request message in accordance with a second protocol in response to determining that the request is associated with the user identifier that is assigned by the resource computer.
14. The server computer of claim 8 , wherein information from the database associated with the plurality of requesting computers includes an identifier of a venue associated with the requesting computer and a name of the venue associated with the requesting computer.
15. A method comprising: receiving, by a client computer from a server computer, a list of a plurality of requesting computers, wherein the server computer accesses a database to retrieve the plurality of requesting computers that have been registered with a transport computer, wherein for each of the plurality of requesting computers, the transport computer is networked to a requesting computer and configured to process authorization request messages for the requesting computer; displaying, by the client computer, a list of a plurality of requesting computers; selecting, by the client computer, the requesting computer from the list of requesting computers; receiving, from the server computer, a plurality of settings which represent a set of rules that control which authorization request messages from the selected requesting computer are forwarded to the transport computer, wherein the plurality of settings are modifiable and comprise a first setting that references one or more attributes that distinguishes a subset of authorization request messages from other authorization request messages; receiving a first selection of the first setting; and transmitting the first selection of the first setting to the server computer, thereby causing the server computer to access the database to modify a rule in accordance with the first setting, receive a first authorization request message that is characterized by one or more second attributes from the selected requesting computer, responsive to receiving the first authorization request message, causes the server computer to use the first authorization request message to access the set of rules that control which authorization request messages from the selected requesting computer are forwarded to the transport computer, wherein the server computer is configured to evaluate the set of rules in response to receiving the first authorization request message that is characterized by the one or more attributes from the selected requesting computer, wherein the evaluating causes an authorization response message to be transmitted to the selected requesting computer without the first authorization request message being forwarded to the transport computer.
16. The method of claim 15 , wherein the authorization response message indicates that a request to access a resource for which the first authorization request message was transmitted is declined.
17. The method of claim 15 , wherein the authorization response message complies with ISO 8583 standard.
18. The method of claim 15 , wherein the first selection of the first setting is received in response to detecting a number of fraudulent transaction that involve foreign debit accounts.
19. The method of claim 15 , wherein the first selection of the first setting is received from an administrator account.
20. The method of claim 15 , wherein the set of rules are configured to a specific merchant.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
May 30, 2019
November 17, 2020
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.